$ rpki-client -vvf repo-rpki.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/323030313a6466333a643334303a3a2f34382d3438203d3e20313532373439.roa File: 323030313a6466333a643334303a3a2f34382d3438203d3e20313532373439.roa (raw, json) Hash identifier: xJ7jPZiRN5p9CCeavvlkfOq9xqVrWGN0H9fWEY/Ic+k= Subject key identifier: 2C:17:2B:74:53:E6:FA:57:19:0B:55:A0:83:64:E8:24:AD:68:AB:A0 Certificate issuer: /CN=33D2F1EAE44634CCF2B028FDCA2A11513D83B42D Certificate serial: 76B06F6E3860B46DCE98879268AFC067033F190B Authority key identifier: 33:D2:F1:EA:E4:46:34:CC:F2:B0:28:FD:CA:2A:11:51:3D:83:B4:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D2F1EAE44634CCF2B028FDCA2A11513D83B42D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/323030313a6466333a643334303a3a2f34382d3438203d3e20313532373439.roa Signing time: Tue 23 Jul 2024 06:52:54 +0000 ROA not before: Tue 23 Jul 2024 06:47:54 +0000 ROA not after: Tue 22 Jul 2025 06:52:54 +0000 asID: 152749 IP address blocks: 2001:df3:d340::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/33D2F1EAE44634CCF2B028FDCA2A11513D83B42D.crl rsync://repo-rpki.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/33D2F1EAE44634CCF2B028FDCA2A11513D83B42D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D2F1EAE44634CCF2B028FDCA2A11513D83B42D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 00:38:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:b0:6f:6e:38:60:b4:6d:ce:98:87:92:68:af:c0:67:03:3f:19:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33D2F1EAE44634CCF2B028FDCA2A11513D83B42D Validity Not Before: Jul 23 06:47:54 2024 GMT Not After : Jul 22 06:52:54 2025 GMT Subject: CN=2C172B7453E6FA57190B55A08364E824AD68ABA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:aa:bc:e6:30:fe:1d:e1:0a:d6:4f:64:2e:94: ee:85:66:4b:01:dd:ad:02:1d:7b:e4:40:f1:58:b8: 5d:34:b4:8a:c0:c4:08:a5:d7:6c:d0:b5:ce:bc:1d: 06:18:1b:59:93:a8:e8:6a:de:c1:b7:c6:f6:a3:c6: 55:fe:8e:0c:0d:7e:ea:63:f2:d6:a0:5d:98:b6:71: 0f:c9:04:22:a9:a8:83:91:80:22:aa:6c:38:25:98: 61:d8:38:6b:e3:b6:8e:08:3f:f1:55:b4:ef:aa:f1: 0c:9e:80:9d:5a:8e:f3:7e:1b:02:50:29:d8:b7:7f: d5:e6:50:fc:67:38:61:8e:94:a5:d1:c1:ae:42:3d: 2f:2f:f3:00:21:a5:41:ce:7d:0c:1c:6c:26:27:b3: df:cb:fa:85:b2:f9:ee:6d:45:b7:15:38:47:df:54: 75:e1:e1:cc:82:10:fa:f8:1b:3a:7e:c6:c2:07:3f: ff:94:19:df:90:27:bf:72:0c:6b:79:c8:09:74:eb: 7e:d9:a6:fa:0f:e4:25:ff:fe:e0:13:86:7a:97:9b: 1d:04:fa:80:c1:08:ad:22:00:14:f6:75:ca:d1:37: 16:e8:7e:04:45:5e:d0:ef:cc:e4:64:78:d1:8b:6b: 39:0e:fb:72:fd:5b:e5:56:32:dd:58:3e:7d:b7:7b: 91:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:17:2B:74:53:E6:FA:57:19:0B:55:A0:83:64:E8:24:AD:68:AB:A0 X509v3 Authority Key Identifier: keyid:33:D2:F1:EA:E4:46:34:CC:F2:B0:28:FD:CA:2A:11:51:3D:83:B4:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/33D2F1EAE44634CCF2B028FDCA2A11513D83B42D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D2F1EAE44634CCF2B028FDCA2A11513D83B42D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/323030313a6466333a643334303a3a2f34382d3438203d3e20313532373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:d340::/48 Signature Algorithm: sha256WithRSAEncryption 72:db:1a:e6:9f:a5:1c:ce:26:bb:c7:1f:4b:f9:4b:02:7d:73: ff:13:7e:81:f3:80:6a:b4:19:65:b4:4d:4f:21:5c:fb:8f:5c: 56:d5:cd:90:ee:c4:8c:7f:3f:a5:d7:8b:3a:e2:0d:fe:97:6e: a8:f1:31:11:d1:67:0f:3e:05:ab:3e:8c:a3:e7:5a:f0:05:c5: e5:cc:c6:8b:94:e4:03:48:f6:bc:95:e4:d9:92:ca:1c:f1:ec: b5:53:c4:7a:4f:2a:6b:f6:20:ed:91:5a:dc:bd:e6:6f:07:8b: c8:f3:24:81:68:50:19:ba:88:1a:30:d9:c4:ab:2b:9d:1c:aa: 77:ff:fd:86:40:06:39:d4:ae:32:ed:6b:ee:ee:77:9a:ad:a5: 10:38:6c:31:21:8f:02:9c:68:0b:63:26:09:ca:f9:57:57:9b: f8:1e:1f:82:a6:e9:6b:f2:f0:a6:c3:3d:2c:81:1d:28:e3:c1: b8:25:f3:b4:02:60:c1:51:1c:5a:0b:a7:11:f1:dc:fe:dc:77: 81:a7:65:5c:8e:74:5d:75:82:f9:4a:39:02:27:cd:2c:dc:13: b6:f0:6f:a6:2c:e8:dc:f6:b5:82:dd:6c:bc:27:7f:b6:e3:9e: 75:21:c9:c6:7b:c1:3d:d3:b8:e2:6a:b4:de:9c:05:43:e1:6e: da:b5:a2:ed -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdrBvbjhgtG3OmIeSaK/AZwM/GQswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNEMkYxRUFFNDQ2MzRDQ0YyQjAyOEZEQ0EyQTExNTEz RDgzQjQyRDAeFw0yNDA3MjMwNjQ3NTRaFw0yNTA3MjIwNjUyNTRaMDMxMTAvBgNV BAMTKDJDMTcyQjc0NTNFNkZBNTcxOTBCNTVBMDgzNjRFODI0QUQ2OEFCQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0qrzmMP4d4QrWT2QulO6FZksB 3a0CHXvkQPFYuF00tIrAxAil12zQtc68HQYYG1mTqOhq3sG3xvajxlX+jgwNfupj 8tagXZi2cQ/JBCKpqIORgCKqbDglmGHYOGvjto4IP/FVtO+q8QyegJ1ajvN+GwJQ Kdi3f9XmUPxnOGGOlKXRwa5CPS8v8wAhpUHOfQwcbCYns9/L+oWy+e5tRbcVOEff VHXh4cyCEPr4Gzp+xsIHP/+UGd+QJ79yDGt5yAl0637ZpvoP5CX//uAThnqXmx0E +oDBCK0iABT2dcrRNxbofgRFXtDvzORkeNGLazkO+3L9W+VWMt1YPn23e5EpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQULBcrdFPm+lcZC1Wgg2ToJK1oq6AwHwYDVR0j BBgwFoAUM9Lx6uRGNMzysCj9yioRUT2DtC0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YjczM2RjZi05ZjVlLTQ3NzUtOWNlNy05ZGQ1MjViNDRiODYvMS8zM0QyRjFFQUU0 NDYzNENDRjJCMDI4RkRDQTJBMTE1MTNEODNCNDJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNEMkYxRUFFNDQ2MzRDQ0YyQjAyOEZEQ0EyQTExNTEzRDgz QjQyRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzliNzMzZGNmLTlmNWUtNDc3NS05 Y2U3LTlkZDUyNWI0NGI4Ni8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0MzMzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzczNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89NAMA0GCSqGSIb3DQEBCwUAA4IBAQBy2xrmn6Uczia7xx9L+UsCfXP/E36B84Bq tBlltE1PIVz7j1xW1c2Q7sSMfz+l14s64g3+l26o8TER0WcPPgWrPoyj51rwBcXl zMaLlOQDSPa8leTZksoc8ey1U8R6Typr9iDtkVrcveZvB4vI8ySBaFAZuogaMNnE qyudHKp3//2GQAY51K4y7Wvu7nearaUQOGwxIY8CnGgLYyYJyvlXV5v4Hh+Cpulr 8vCmwz0sgR0o48G4JfO0AmDBURxaC6cR8dz+3HeBp2VcjnRddYL5SjkCJ80s3BO2 8G+mLOjc9rWC3Wy8J3+24551IcnGe8E907jiarTenAVD4W7ataLt -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:21 2024 by rpki-client on console-fra.rpki-client.org